Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Lyh9UHVl0pzc6D9vzJiBWDzitM8.roa
File: Lyh9UHVl0pzc6D9vzJiBWDzitM8.roa (raw, json)
Hash identifier: ycGBbfWcClS2CSjYqkFXT+MJ6eZ49VEUq0JuSqsNXsA=
Subject key identifier: 2F:28:7D:50:75:65:D2:9C:DC:E8:3F:6F:CC:98:81:58:3C:E2:B4:CF
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0783
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Lyh9UHVl0pzc6D9vzJiBWDzitM8.roa
Signing time: Tue 29 Sep 2020 09:51:34 +0000
ROA not before: Tue 29 Sep 2020 09:51:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.77.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F287D507565D29CDCE83F6FCC9881583CE2B4CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:64:70:b4:d4:3e:6a:9a:66:f3:5e:32:b0:53:
3f:4a:f9:d7:8f:bd:6f:cb:c4:48:81:cb:9f:a0:c0:
94:c2:55:7e:0b:89:b7:80:a4:d1:15:f5:3a:f0:cb:
a5:bf:bd:97:8f:c4:47:11:e2:8e:25:d8:f3:1b:f8:
5f:27:0c:a8:09:22:3a:3b:ef:39:b1:99:62:6f:eb:
43:e7:a3:a5:94:00:56:83:6a:88:9f:56:8c:ee:b9:
ad:0d:2d:5c:1e:0b:bd:c7:04:73:46:fb:91:51:65:
5c:18:db:ca:e5:80:ad:90:8c:b1:1a:35:58:5c:09:
21:6d:d7:98:41:3b:17:ac:88:ac:2d:46:94:88:58:
6b:33:6d:fe:7c:8c:3e:66:fe:aa:30:20:ea:d6:9f:
0c:96:44:ec:ba:5b:19:94:a9:ca:a2:2e:14:d2:ff:
e2:72:61:08:8e:56:f7:1e:0b:4d:11:b9:fa:95:25:
e4:3d:43:13:82:a3:73:bf:11:5b:eb:8d:5f:e2:5c:
a4:03:ce:df:ed:8e:55:9a:89:1c:a9:18:95:5d:9b:
4d:75:92:98:4a:fa:d7:7f:b8:d3:2f:17:c2:14:b1:
fc:66:1b:3b:3e:f4:d9:ab:0d:b9:9a:b4:e6:71:6f:
cf:23:52:09:be:c7:bc:16:8a:c4:89:a6:4e:30:82:
b5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:28:7D:50:75:65:D2:9C:DC:E8:3F:6F:CC:98:81:58:3C:E2:B4:CF
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Lyh9UHVl0pzc6D9vzJiBWDzitM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:c0:ff:ad:7d:80:d1:64:98:ff:15:a1:64:5d:32:89:96:74:
d9:48:70:f9:e8:ee:a5:92:9d:72:40:30:38:0e:fb:c4:51:50:
33:5b:b7:a7:4b:89:45:c1:3f:4a:b6:8c:6f:35:19:cf:d9:81:
21:66:87:b6:5f:49:26:84:95:ea:cf:1f:ce:8e:d7:52:b5:00:
04:c7:03:3c:c8:42:69:b3:1e:3a:e3:91:f7:4b:08:9a:80:23:
bf:27:7c:68:82:67:8a:d2:37:f5:7c:e2:b9:13:18:c5:e1:d5:
9a:83:d0:13:9f:67:17:2f:3e:26:98:ea:64:62:bb:2c:bb:dd:
9d:36:2e:f4:32:0c:8b:a2:5f:86:21:1f:20:b7:99:6f:6d:bf:
3a:2c:6c:02:79:a6:f7:13:cf:f3:94:ed:2f:55:79:a9:99:09:
70:42:aa:db:80:3d:6d:f8:97:ee:6f:8f:21:42:a5:dc:d6:4e:
e9:f5:8a:9a:64:7b:91:e2:e8:d3:ed:33:fe:a3:ee:f7:14:5e:
a6:d4:c4:a3:5c:64:c3:eb:3f:fd:4c:cb:13:be:4f:bf:7e:58:
f4:75:19:6b:d1:59:1b:58:8c:47:19:e2:f9:3a:41:eb:2c:e0:
bc:85:8d:cb:f2:71:b4:49:00:7a:94:db:ed:1f:03:e1:0a:78:
42:90:05:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org